Security Awareness for IT Users - InfoSec Institute InfoSec Institute is consistently rated as one of the top providers for Security Awareness Program training for users of IT systems. With a systematic approach, multiple delivery formats (instructor-led, CBT/WBT, SCORM formatted modules), and access to industry recognized subject matter experts, InfoSec Institute has what it takes to raise critical security awareness issues in a thought provoking manner for your organization.
Security Awareness for Software Developers (.NET, Java, C/C++) - InfoSec Institute Software developers are increasingly under task to develop more secure applications. Without the requisite knowledge, it is an insurmountable task. InfoSec Institute bridges the gap between poorly designed and executed code and secure code with the internationally recognized Security Awareness for Software Developers line of courses.
You can find other value able security awareness training resources here:
ENISA: A Usersí Guide: How to Raise Information
This document illustrates the main processes necessary to plan,
org anise and run information security awareness program raising initiatives:
plan & assess, execute & manage, evaluate & adjust. Each process
is analyses and time-related actions and dependencies are identified.
The process modeling presented provides a basis for "kick-starting"
the scoping and planning activities as well as the execution and
assessment of any security awareness program. The Guide aims to deliver a consistent
and robust understanding of major processes and activities amoung
800-16: Information Technology Security Training Requirements
The overall goal for use of this document is to facilitate the
development or strengthening of a comprehensive, measurable, cost-effective
IT security awareness program which supports the missions of the organization
and is administered as an integral element of sound IT management
and planning. Protecting the value of an organizationís information
assets demands no less. This approach allows senior officials
to understand where, in what way, and to what extent IT-related
job responsibilities include IT security responsibilities, permitting
the most cost-effective allocation of limited IT security training
resources. Appendix A-DAppendix E
a Security Awareness Program - CyberGuard
Hackers, worms and viruses grab the headlines, but the real threat
often comes not from outside the organization but within. Social
engineering and unhappy employees pose very real risks to network
security. How do you address the problem? This article offers
a practical approach to setting up an effective security awareness
program that gets everyone in the organization on board.
Awareness Tips for All Personnel -
Gideon T. Rasmussen
Security tips are a key component to any awareness program. They
should advise of best practices and reinforce policy.These tips
are written with the average person as the intended audience.
The site randomly displays information security tips. Companies
can use it internally to educate their user community. The site
and script are free to download.
NoticeBored offers a free awareness newsletter covering a different
information security topic each month. The newsletter provides
an introduction to the monthly topic, describes the information
security risks and outlines the remaining security awareness materials
delivered to NoticeBored customers.
IIA Tone at the Top
Mission: To provide executive management, boards of directors, and audit committees with
concise, leading-edge information on such issues as risk, internal control, governance,
ethics, and the changing role of internal auditing; and guidance relative to their roles
in, and responsibilities for the internal audit process.
Awareness Group - Yahoo Groups The security awareness group provides a forum to discuss
awareness program methodologies and share security awareness tips.
Those interested in learning more about information security will
benefit from the exchange of tips and the opportunity to ask questions.
Security Awareness Posters
Attentus Healthcare Company in cooperation with DasSign has provided
security awareness posters in the interest of public education.
These posters can be used and distributed freely without obligation.